Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government 6,637 people reacted Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:05 AM 27 8 min. read
Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda 7,911 people reacted Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:03 AM 19 12 min. read
Persistent Attempts at Cyberespionage Against Southeast Asian Government Target Have Links to Alloy Taurus 4,425 people reacted Persistent Attempts at Cyberespionage Against Southeast Asian Government Target Have Links to Alloy Taurus By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:02 AM 5 13 min. read
Unit 42 Researchers Discover Multiple Espionage Operations Targeting Southeast Asian Government 6,095 people reacted Unit 42 Researchers Discover Multiple Espionage Operations Targeting Southeast Asian Government By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:00 AM 16 6 min. read
Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT 11,509 people reacted Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT By Robert Falcone September 19, 2023 at 6:00 AM 13 10 min. read
Threat Brief: 3CXDesktopApp Supply Chain Attack (Updated) 80,241 people reacted Threat Brief: 3CXDesktopApp Supply Chain Attack (Updated) By Robert Falcone and Josh Grunzweig March 30, 2023 at 12:50 PM 29 8 min. read
Threat Brief: OWASSRF Vulnerability Exploitation 65,614 people reacted Threat Brief: OWASSRF Vulnerability Exploitation By Robert Falcone and Lior Rochberger December 22, 2022 at 5:30 PM 15 9 min. read
CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) 109,228 people reacted CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) By Haozhe Zhang, Ken Hsu, Tao Yan, Qi Deng and Robert Falcone March 31, 2022 at 4:30 PM 89 12 min. read
Threat Brief: Ongoing Russia and Ukraine Cyber Activity 87,939 people reacted Threat Brief: Ongoing Russia and Ukraine Cyber Activity By Robert Falcone, Mike Harbison and Josh Grunzweig January 20, 2022 at 12:30 PM 55 8 min. read
Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228) (Updated) 315,713 people reacted Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228) (Updated) By Tao Yan, Qi Deng, Haozhe Zhang, Yu Fu, Josh Grunzweig, Mike Harbison and Robert Falcone December 10, 2021 at 1:00 PM 474 15 min. read
APT Expands Attack on ManageEngine With Active Campaign Against ServiceDesk Plus 64,219 people reacted APT Expands Attack on ManageEngine With Active Campaign Against ServiceDesk Plus By Robert Falcone and Peter Renals December 2, 2021 at 6:00 AM 19 10 min. read
Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer 115,761 people reacted Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer By Robert Falcone, Jeff White and Peter Renals November 7, 2021 at 6:00 PM 70 18 min. read
Mespinoza Ransomware Gang Calls Victims “Partners,” Attacks with Gasket, "MagicSocks" Tools 55,183 people reacted Mespinoza Ransomware Gang Calls Victims “Partners,” Attacks with Gasket, "MagicSocks" Tools By Robert Falcone, Alex Hinchliffe and Quinn Cooke July 15, 2021 at 3:00 AM 23 23 min. read
New Shameless Commodity Cryptocurrency Stealer (WeSteal) and Commodity RAT (WeControl) 50,663 people reacted New Shameless Commodity Cryptocurrency Stealer (WeSteal) and Commodity RAT (WeControl) By Robert Falcone and Simon Conant April 29, 2021 at 12:01 AM 35 9 min. read
Actor Exploits Microsoft Exchange Server Vulnerabilities, Cortex XDR Blocks Harvesting of Credentials 45,702 people reacted Actor Exploits Microsoft Exchange Server Vulnerabilities, Cortex XDR Blocks Harvesting of Credentials By Robert Falcone April 15, 2021 at 6:00 AM 26 8 min. read